$ rpki-client -vvf repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft File: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft (raw, json) Hash identifier: nX92tXd/BzklQk2U/pftKLKa9i4aWbNUW00aaTVAhZM= Subject key identifier: BE:37:AB:E1:6E:60:44:B1:44:90:83:43:BC:72:00:9C:3C:4A:94:20 Authority key identifier: BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 Certificate issuer: /CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Certificate serial: 04D9D77717E7123F4E03E18C3C15F1DB99D86323 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft Manifest number: 0180 Signing time: Mon 20 May 2024 05:51:16 +0000 Manifest this update: Mon 20 May 2024 05:46:16 +0000 Manifest next update: Thu 23 May 2024 05:56:16 +0000 Files and hashes: 1: BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl (hash: HsceGBWLV/pY6itnOP1R7Ktwr54wzraluCd7FW4p12g=) 2: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: 9Xcsdg9OW7hyvLJeIxms0eDUq77C9ZWWfMe+MJrxwGo=) 3: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: pu0ttZvTgMirb/HkuzJkh5PphveCvv9f8Ea2Bo6PoMQ=) 4: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: IU1YI+kImGr7JS6rF3mfeGLwbenBpKsV+O4vPGEbliE=) 5: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: 2ALnzG8NpGh5V78r+rS+kxv6aYsU+DzNaB2tOqBsk2A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 05:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d9:d7:77:17:e7:12:3f:4e:03:e1:8c:3c:15:f1:db:99:d8:63:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD5D46B5BFE72F2AA1188A9096B10E01474244B1 Validity Not Before: May 20 05:46:16 2024 GMT Not After : May 23 05:56:16 2024 GMT Subject: CN=BE37ABE16E6044B144908343BC72009C3C4A9420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4b:bd:77:30:47:47:cc:71:a2:fd:94:d8:d9: 3a:bd:34:4b:67:49:0b:c4:99:6f:33:ec:c0:81:7c: 3e:ba:cc:f2:47:5d:92:a4:a2:ed:18:30:62:a9:5b: e0:d6:70:3f:80:0f:8a:45:32:40:2b:7b:51:85:b3: aa:4d:bb:44:ff:aa:7b:bc:13:2a:f4:07:7d:11:6c: 82:dd:19:b2:84:dc:41:41:39:75:16:4a:ee:ba:40: 27:93:b8:e0:03:32:96:0f:95:a3:92:e5:da:1c:ee: 94:81:7d:a2:c7:60:4e:6d:9d:99:00:54:9b:74:16: 89:96:4f:87:39:61:fe:b3:0e:e5:14:33:ac:86:66: a6:4c:51:f8:91:ff:88:c9:ce:3e:78:5a:f0:fa:83: 35:06:8b:91:f5:57:07:af:b7:d8:02:ec:b1:04:f4: 0e:cf:0f:2c:ae:bc:96:2e:c3:e9:81:90:c1:c4:be: f7:e9:0f:d8:2e:65:a7:17:18:ca:e8:f7:b7:0c:89: 0b:85:98:66:f3:3b:80:be:4c:b0:fc:cd:bf:15:98: 7f:89:ab:75:e8:f4:46:41:5a:2c:84:eb:92:74:85: ca:c9:23:a1:66:a0:4a:c0:fc:f9:c9:92:0d:64:f0: c5:e0:8d:9e:e8:f9:b6:b0:4a:97:41:77:cb:46:dd: 5e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:37:AB:E1:6E:60:44:B1:44:90:83:43:BC:72:00:9C:3C:4A:94:20 X509v3 Authority Key Identifier: keyid:BD:5D:46:B5:BF:E7:2F:2A:A1:18:8A:90:96:B1:0E:01:47:42:44:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/BD5D46B5BFE72F2AA1188A9096B10E01474244B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:61:1a:0c:a8:3e:69:e9:8d:71:f3:01:12:7d:51:b3:6e:2b: 2a:26:b5:f3:38:8f:f3:22:54:80:43:5c:55:e9:d5:2a:54:87: 49:30:00:8b:5e:56:9c:77:73:97:9a:c2:fb:c0:2f:f9:0e:96: 60:f0:df:78:7f:2d:3b:37:f4:4d:24:a2:9b:3f:3b:12:c4:76: 4b:6f:06:7a:b1:de:10:8b:60:19:41:cf:84:ca:1b:53:78:10: 40:ca:e3:3f:20:26:e2:a3:4d:15:2a:a3:45:53:9c:2d:44:ab: 38:6d:ab:0e:66:3a:4d:69:a1:8f:80:e9:e9:00:59:30:40:a1: fd:e9:bf:2f:db:42:22:1c:50:e6:5b:e5:41:e8:4b:06:06:db: 42:86:68:e8:2e:e5:c5:a0:c5:46:ac:8c:7f:71:45:ec:1b:fb: 1f:fd:88:af:c3:b8:1e:ff:f6:ad:c6:7c:b8:3b:f9:e6:6c:5c: 5d:33:08:b1:0a:0d:86:9b:14:76:07:1d:10:bf:1d:f4:82:da: 14:3e:79:38:9e:2c:14:d9:73:9a:70:d7:67:a4:e6:04:46:63: 22:46:00:18:b0:85:b2:73:27:b8:5b:27:0a:b3:e5:82:ca:80: d4:12:12:7e:2a:1a:36:e8:cb:47:68:61:d1:9b:ac:d6:dc:b7: 34:5f:af:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBNnXdxfnEj9OA+GMPBXx25nYYyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0 NzQyNDRCMTAeFw0yNDA1MjAwNTQ2MTZaFw0yNDA1MjMwNTU2MTZaMDMxMTAvBgNV BAMTKEJFMzdBQkUxNkU2MDQ0QjE0NDkwODM0M0JDNzIwMDlDM0M0QTk0MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6S713MEdHzHGi/ZTY2Tq9NEtn SQvEmW8z7MCBfD66zPJHXZKkou0YMGKpW+DWcD+AD4pFMkAre1GFs6pNu0T/qnu8 Eyr0B30RbILdGbKE3EFBOXUWSu66QCeTuOADMpYPlaOS5doc7pSBfaLHYE5tnZkA VJt0FomWT4c5Yf6zDuUUM6yGZqZMUfiR/4jJzj54WvD6gzUGi5H1Vwevt9gC7LEE 9A7PDyyuvJYuw+mBkMHEvvfpD9guZacXGMro97cMiQuFmGbzO4C+TLD8zb8VmH+J q3Xo9EZBWiyE65J0hcrJI6FmoErA/PnJkg1k8MXgjZ7o+bawSpdBd8tG3V4tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvjer4W5gRLFEkINDvHIAnDxKlCAwHwYDVR0j BBgwFoAUvV1Gtb/nLyqhGIqQlrEOAUdCRLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTI0ZmE5YS1lNWYzLTQyNjUtOWUxZC04NGU0NTM1OTYxZDAvMC9CRDVENDZCNUJG RTcyRjJBQTExODhBOTA5NkIxMEUwMTQ3NDI0NEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBFMDE0NzQy NDRCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDkyNGZhOWEtZTVmMy00MjY1LTll MWQtODRlNDUzNTk2MWQwLzAvQkQ1RDQ2QjVCRkU3MkYyQUExMTg4QTkwOTZCMTBF MDE0NzQyNDRCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA5hGgyoPmnpjXHzARJ9UbNuKyomtfM4j/Mi VIBDXFXp1SpUh0kwAIteVpx3c5eawvvAL/kOlmDw33h/LTs39E0kops/OxLEdktv Bnqx3hCLYBlBz4TKG1N4EEDK4z8gJuKjTRUqo0VTnC1Eqzhtqw5mOk1poY+A6ekA WTBAof3pvy/bQiIcUOZb5UHoSwYG20KGaOgu5cWgxUasjH9xRewb+x/9iK/DuB7/ 9q3GfLg7+eZsXF0zCLEKDYabFHYHHRC/HfSC2hQ+eTieLBTZc5pw12ek5gRGYyJG ABiwhbJzJ7hbJwqz5YLKgNQSEn4qGjboy0doYdGbrNbctzRfr1w= -----END CERTIFICATE-----Generated at Mon May 20 06:21:41 2024 by rpki-client on console-fra.rpki-client.org